Taus Brock-Nannestad
e47b391329
Fix interpolation.
2019-02-26 16:27:04 +01:00
Taus Brock-Nannestad
7daaf77183
Make query alert refer to AST nodes rather than CFG nodes.
2019-02-26 15:56:37 +01:00
Taus Brock-Nannestad
504cb648d1
Change query description.
2019-02-26 13:26:20 +01:00
Taus Brock-Nannestad
8d774cd354
Merge branch 'master' into python-unsafe-use-of-mktemp
2019-02-26 13:23:38 +01:00
Taus
9d7877907b
Merge pull request #964 from markshannon/python-locations-for-packages
...
Python: Make sure packages have locations.
2019-02-26 11:55:27 +01:00
semmle-qlci
681ff0f39c
Merge pull request #977 from asger-semmle/extend-test-version
...
Approved by xiemaisi
2019-02-26 09:55:41 +00:00
Jonas Jensen
f12dfda28f
Merge pull request #985 from rdmarsh2/rdmarsh/ir-call-side-effect
...
C++: fix PrimaryInstruction for call side effects
2019-02-26 10:36:18 +01:00
semmle-qlci
74a4103857
Merge pull request #976 from asger-semmle/closure-import-deep
...
Approved by esben-semmle
2019-02-26 09:34:04 +00:00
semmle-qlci
00d490e84d
Merge pull request #945 from asger-semmle/extensible-module-import
...
Approved by xiemaisi
2019-02-26 09:26:28 +00:00
Max Schaefer
c2a5350bf2
Merge pull request #982 from asger-semmle/closure-string-lib
...
JS: model string functions from closure library
2019-02-26 08:26:14 +00:00
Nick Rolfe
53de2d8d3e
Merge pull request #830 from ian-semmle/constexpr
...
C++: Add Function.{isDeclaredConstexpr,isConstexpr}() predicates
2019-02-25 22:11:24 +00:00
Robert Marsh
af490a9b3e
C++: fix PrimaryInstruction for call side effects
2019-02-25 11:41:40 -08:00
Asger F
93440014a0
JS: only propagate through first argument of truncate()
2019-02-25 17:11:55 +00:00
Asger F
d45f670646
JS: remove duplicate modelling of urlDecode/urlEncode
2019-02-25 17:04:56 +00:00
Asger F
29de1411b7
JS: remove restriction on truncate calls
2019-02-25 17:00:47 +00:00
Asger F
d70d0e21cc
JS: add format function
2019-02-25 16:30:44 +00:00
Asger F
fab0afd755
JS: model string functions from closure library
2019-02-25 16:08:47 +00:00
Max Schaefer
bea75e2d1c
Merge pull request #981 from esben-semmle/js/fix-docstring
...
JS: fix docstring: s/node1/pred + s/node2/succ
2019-02-25 16:04:15 +00:00
Ian Lynagh
ad126b93cf
C++: Remove a use of deprecated Function.getFullSignature()
2019-02-25 15:51:39 +00:00
Esben Sparre Andreasen
8e01ccd892
JS: fix docstring: s/node1/pred + s/node2/succ
2019-02-25 16:51:30 +01:00
Mark Shannon
c48ab48dbc
Merge pull request #971 from felicity-semmle/ql/SD-3009-add-files
...
Move support information to QL repository for easier maintenance
2019-02-25 15:36:18 +00:00
semmle-qlci
58cc8d0ecc
Merge pull request #936 from xiemaisi/js/revive-electron-support
...
Approved by esben-semmle
2019-02-25 15:23:20 +00:00
Asger F
050626aca0
JS: remove audit alerts from package.json
2019-02-25 15:04:47 +00:00
Esben Sparre Andreasen
46a1c75549
Merge pull request #973 from xiemaisi/js/remove-package-json
...
JavaScript: Delete an unused `package.json` in a test.
2019-02-25 14:05:22 +01:00
Ian Lynagh
f02a4ce63e
C++: Accept test changes following new *constexpr specifiers
2019-02-25 12:48:48 +00:00
Ian Lynagh
133e2d04be
C++: Add a changenote for Function.{isDeclaredConstexpr,isConstexpr}()
2019-02-25 12:48:48 +00:00
Ian Lynagh
4bd03d52f1
C++: Add constexpr support for functions
2019-02-25 12:48:48 +00:00
Ian Lynagh
5db38ef14b
C++: Add a test for constexpr functions
2019-02-25 12:48:48 +00:00
Asger F
7d14429dce
JS: handle deeper access paths in Closure::moduleImport
2019-02-25 12:31:18 +00:00
Asger F
2f6496f6bd
JS: add test with undeclared nested access
2019-02-25 12:27:36 +00:00
Jonas Jensen
a9f8a53dac
Merge pull request #972 from geoffw0/rtl
...
CPP: Add support for the Rtl* functions in BufferAccess.ql
2019-02-25 13:07:05 +01:00
semmle-qlci
c31ccbc114
Merge pull request #925 from asger-semmle/closure-reorg
...
Approved by xiemaisi
2019-02-25 12:02:00 +00:00
Geoffrey White
2ad0ac2c12
Merge pull request #974 from jbj/alloca-delete-precision
...
C++: Remove @precision of AllocaInLoop.ql
2019-02-25 11:48:56 +00:00
Asger F
707886f259
JS: minor qldoc fixes
2019-02-25 11:31:09 +00:00
Asger F
b31d7d1f5f
JS: add test case
2019-02-25 11:31:09 +00:00
Asger F
eab034ccfd
JS: add ModuleImportNode::Range
2019-02-25 11:31:08 +00:00
Jonas Jensen
2181bca389
C++: Remove @precision of AllocaInLoop.ql
...
A PR check was failing because this query was enabled on LGTM but had no
qhelp. I'm removing the `@precision` for now to take it off LGTM, and
then we can add it back when it has qhelp, tests, and change note.
2019-02-25 11:45:34 +01:00
semmle-qlci
014d4b9ed0
Merge pull request #934 from asger-semmle/module-import
...
Approved by xiemaisi
2019-02-25 09:46:52 +00:00
Esben Sparre Andreasen
c34fdda42a
Merge pull request #937 from xiemaisi/js/e4x
...
JavaScript: Add support for E4X.
2019-02-25 10:22:30 +01:00
Max Schaefer
d4dbe3bfb6
JavaScript: Back out parsing of qualified XML identifiers.
...
Their syntax conflicts with the proposed function-bind operator, which is more important to support.
2019-02-24 21:30:59 +00:00
Max Schaefer
6a90459d6a
JavaScript: Add upgrade script.
2019-02-24 21:06:29 +00:00
Max Schaefer
7491b5ea53
JavaScript: Add a comment.
2019-02-24 21:02:12 +00:00
Max Schaefer
f726125b71
JavaScript: Restrict E4X processing instruction disambiguation to the <?xml ...?> case.
2019-02-24 20:56:43 +00:00
Max Schaefer
5a775d9cc7
JavaScript: Add change note.
2019-02-24 20:45:41 +00:00
Max Schaefer
cc216ad250
JavaScript: Buffer recoverable syntax errors during speculative parsing.
...
Analogous to how we buffer tokens, we need to delay reporting these errors until we have committed to a parse.
2019-02-24 20:45:41 +00:00
Max Schaefer
c7e428eb27
JavaScript: Handle E4X/Flow lexical ambiguity.
2019-02-24 20:45:41 +00:00
Max Schaefer
d6deefed86
JavaScript: Accept CDATA in E4X content.
2019-02-24 20:45:41 +00:00
Max Schaefer
81b86d9a0f
JavaScript: Skip XML processing instructions in E4X content.
2019-02-24 20:45:41 +00:00
Max Schaefer
be67d5129a
JavaScript: Add QL library support for E4X.
2019-02-24 20:45:41 +00:00
Max Schaefer
5a89024507
JavaScript: Be more lenient about keywords used as identifiers.
2019-02-24 20:45:41 +00:00
